Movatterモバイル変換

[0]ホーム
URL:

US7490231B2 - Method and system for blocking data in scan registers from being shifted out of a device - Google Patents

Method and system for blocking data in scan registers from being shifted out of a deviceDownload PDF

Info

Publication number
US7490231B2
US7490231B2US11/013,489US1348904AUS7490231B2US 7490231 B2US7490231 B2US 7490231B2US 1348904 AUS1348904 AUS 1348904AUS 7490231 B2US7490231 B2US 7490231B2
Authority
US
United States
Prior art keywords
signal
scan
testmode
reset signal
reset
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related, expires
Application number
US11/013,489
Other versions
US20060020864A1 (en
Inventor
Tony Michael Turner
Jonathan Huy Kuo
Jack Arnold Manson
Martin Kuhlmann
Vin P Hue
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Avago Technologies International Sales Pte Ltd
Original Assignee
Broadcom Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Broadcom CorpfiledCriticalBroadcom Corp
Priority to US11/013,489priorityCriticalpatent/US7490231B2/en
Assigned to BROADCOM CORPORATIONreassignmentBROADCOM CORPORATIONASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS).Assignors: HUE, VIN P., KUHLMANN, MARTIN, KUO, JONATHAN HUY, MANSON, JACK ARNOLD, TURNER, TONY MICHAEL
Publication of US20060020864A1publicationCriticalpatent/US20060020864A1/en
Application grantedgrantedCritical
Publication of US7490231B2publicationCriticalpatent/US7490231B2/en
Assigned to BANK OF AMERICA, N.A., AS COLLATERAL AGENTreassignmentBANK OF AMERICA, N.A., AS COLLATERAL AGENTPATENT SECURITY AGREEMENTAssignors: BROADCOM CORPORATION
Assigned to AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD.reassignmentAVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD.ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS).Assignors: BROADCOM CORPORATION
Assigned to BROADCOM CORPORATIONreassignmentBROADCOM CORPORATIONTERMINATION AND RELEASE OF SECURITY INTEREST IN PATENTSAssignors: BANK OF AMERICA, N.A., AS COLLATERAL AGENT
Assigned to AVAGO TECHNOLOGIES INTERNATIONAL SALES PTE. LIMITEDreassignmentAVAGO TECHNOLOGIES INTERNATIONAL SALES PTE. LIMITEDMERGER (SEE DOCUMENT FOR DETAILS).Assignors: AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD.
Assigned to AVAGO TECHNOLOGIES INTERNATIONAL SALES PTE. LIMITEDreassignmentAVAGO TECHNOLOGIES INTERNATIONAL SALES PTE. LIMITEDCORRECTIVE ASSIGNMENT TO CORRECT THE EFFECTIVE DATE OF MERGER PREVIOUSLY RECORDED AT REEL: 047195 FRAME: 0827. ASSIGNOR(S) HEREBY CONFIRMS THE MERGER.Assignors: AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD.
Expired - Fee Relatedlegal-statusCriticalCurrent
Adjusted expirationlegal-statusCritical

Links

Images

Classifications

Definitions

Landscapes

Abstract

Aspects of a method and system for blocking data in scan registers from being shifted out of a device may comprise preventing data intrusion in an integrated circuit by generating a device reset signal prior to entering scan mode. The method may further comprise detecting an attempt to enter said scan mode. The device reset signal may also be an internal reset signal. A subsequent device reset signal may be generated after entering scan mode. The subsequent device reset signal may be an internal pulse signal. The method may further comprise clearing stored data in an integrated circuit after generating a subsequent device reset signal.

Description

CROSS-REFERENCE TO RELATED APPLICATIONS/INCORPORATION BY REFERENCE
This application makes reference to, claims priority to, and claims the benefit of U.S. Provisional Application Ser. No. 60/590,664 filed Jul. 23, 2004.
The above stated application is hereby incorporated herein by reference in its entirety.
FIELD OF THE INVENTION
Certain embodiments of the invention relate to data protection. More specifically, certain embodiments of the invention relate to a method and system for blocking data in scan registers from being shifted out of a device.
BACKGROUND OF THE INVENTION
Scan mode is a mode where all scan chain flip-flops in a chip may be tested using the test methodology known in the art as boundary scan. A chip may alternately be known as an integrated circuit, integrated circuit chip, integrated circuit device, or device, which comprises a plurality of flip flops arranged in a scan chain. Scan mode may exist on all the flip-flops in an entire chip which may be configured in very long chains or which may be arranged into smaller segments. Scan mode may be utilized for factory testing. The flip-flops may be connected in a daisy chain configuration and during scan testing, designated bit patterns of logic 0's and logic 1s may be shifted through the daisy-chained flip-flops. A control circuit may be utilized to clock data that has been shifted into the daisy-chained flip-flops in order to shift the clocked data by one flip-flop. The resulting shifted data may then be shifted back out and compared with the data that was shifted in order to determine whether there are any stuck bits, broken links, open circuits, shorts, and/or other defects.
In certain instances, important information such as security keys may be stored in the flip-flops of a chip when the chip is functioning in normal operating mode. Whenever this happens, all the data in the flip-flop may be shifted out of the scan chain in order to capture all of the states of the flip-flops. These states of the flip-flops may include information pertaining to all of the keys. Accordingly, with knowledge of the internals of the chip, one skilled in the art may be able to assemble all this information and decipher the keys in order to compromise data integrity.
In set-top boxes that have conditional access systems, for example, a hacker may halt the normal operation of the chip and enter scan mode, which is utilized to test the flip-flops. Once access is gained to the flip-flop during scan mode, the data in the flip-flops may be acquired by shifting out the contents of at least a portion of the flip-flops that have secure information stored therein. Accordingly, access to scan mode should be prevented during operation to ensure integrity of data such as security keys that are stored in the flip-flops of a chip.
Further limitations and disadvantages of conventional and traditional approaches will become apparent to one of skill in the art, through comparison of such systems with some aspects of the present invention as set forth in the remainder of the present application with reference to the drawings.
BRIEF SUMMARY OF THE INVENTION
Certain embodiments of the invention may be found in a method and system for blocking data in scan registers from being shifted out of a device. Aspects of the method for preventing data intrusion in an integrated circuit may comprise generating a device reset signal prior to entering scan mode. The method may further comprise detecting an attempt to enter scan mode. In one aspect of the invention, the device reset signal may be an internal reset signal. Notwithstanding, a subsequent device reset signal may be generated after entering scan mode. The subsequent device reset signal may be an internal pulse signal. Stored data in the integrated circuit may be cleared after generating a subsequent device reset signal.
The method may comprise extending an external reset signal to generate an internal pulse signal after entering scan mode, and receiving the external reset signal and an external scan mode signal. A scan testmode signal may be generated by latching an external scan mode signal based upon the device reset signal. A scan testmode delay signal may be generated based upon a delayed version of the scan testmode signal. An internal pulse signal may be generated based upon the scan testmode signal and the scan testmode delay signal. The method may further comprise generating the internal pulse signal as a logical XNOR sum of the scan testmode signal and the scan testmode delay signal.
Aspects of a system for blocking data in scan registers from being shifted out of a device may comprise circuitry that prevents data intrusion in an integrated circuit by generating a device reset signal prior to entering scan mode. The system may further comprise circuitry that may be adapted to detect an attempt to enter scan mode. In one aspect of the invention, the device reset signal may be an internal reset signal. Circuitry may be provided for generating a subsequent device reset signal after entering scan mode. The subsequent device reset signal may be an internal pulse signal. Circuitry may be adapted to clear stored data in the integrated circuit after generating the subsequent device reset signal.
The system may comprise circuitry that extends an external reset signal to generate an internal pulse signal after entering scan mode. The system may further comprise circuitry that receives the external reset signal and an external scan mode signal. A scan testmode signal may be generated by latching an external scan mode signal based upon the device reset signal. Circuitry may be provided to generate a scan testmode delay signal based upon a delayed version of the scan testmode signal. An internal pulse signal may be generated by circuitry based upon the scan testmode signal and the scan testmode delay signal. The system may further comprise circuitry that generates the internal pulse signal as a logical XNOR sum of the scan testmode signal and the scan testmode delay signal.
These and other advantages, aspects and novel features of the present invention, as well as details of an illustrated embodiment thereof, will be more fully understood from the following description and drawings.
BRIEF DESCRIPTION OF SEVERAL VIEWS OF THE DRAWINGS
FIG. 1 is a block diagram of an exemplary system for blocking data in scan registers from being shifted out of a device, in accordance with an embodiment of the invention.
FIG. 2 is a block diagram illustrating the reset conditioning stage ofFIG. 1, for example, in accordance with an embodiment of the invention.
FIG. 3 is a block diagram illustrating circuitry for the reset generation stage ofFIG. 1, for example, in accordance with an embodiment of the invention.
FIG. 4 is a block diagram illustrating circuitry for pulse generation, in accordance with an embodiment of the invention.
FIG. 5 is a block diagram illustrating circuitry for reset synchronization, in accordance with an embodiment of the invention.
FIG. 6 is a diagram illustrating a timing diagram of signals in the exemplary system ofFIG. 1, for example, in accordance with an embodiment of the invention.
FIG. 7 is a flow chart illustrating exemplary steps in the operation of an exemplary system, in accordance with an embodiment of the invention.
DETAILED DESCRIPTION OF THE INVENTION
Certain embodiments of the invention may be found in a method and system for blocking data in scan registers from being shifted out of a device. In an embodiment of the invention, whenever an attempt is made to activate or enter scan mode, a chip-wide reset is generated to the flip-flops throughout the chip. The chip-wide reset may be an asynchronous reset event. Notwithstanding, when a reset is issued to the flip-flops within the chip, all the data in the flip-flops gets cleared. Accordingly, if scan mode is entered after the reset is issued, then the keys or data related to the keys will no longer be present in the flip-flops. Since scan mode is not intended to be utilized outside of factory testing, clearing of the flip-flops prior to entering scan mode does not adversely affect operation of the chip. In addition to clearing all the flip-flops prior to entering scan mode, another aspect of the invention ensures that scan mode cannot be entered until after a reset is issued. As a result, entering scan mode ensures that all the flip-flops in the chip are cleared in order to guarantee that security key or key related data handled by the chip is not compromised.
FIG. 1 is a block diagram of an exemplary system for blocking data in scan registers from being shifted out of a device, in accordance with an embodiment of the invention. Referring toFIG. 1, the exemplary system comprises anintegrated circuit100, which in turn comprises areset conditioning stage102, areset generation stage104, and areset synchronization stage106. An external reset (extrst) signal108 is coupled to an input to thereset conditioning stage102 as is a clock1 (clock_1) signal110 and a test enable (test_en)signal112. Theinternal reset signal114 is an output from thereset conditioning stage102. Thereset generation stage104 may be adapted to receive as an input, theinternal reset signal114 and a scan mode (scan_mode)signal116. Outputs from the reset generation stage are an asynchronous reset (async_reset) signal118 and a scan testmode (scan_testmode) signal120. The reset synchronization stage receives as inputs the asynchronous reset (async_reset) signal118 and scan testmode (scan_testmode) signal120 and a clock2 (clock_2)signal122. The chip flip flop reset (chip_flip_flop_reset) signal124 is the output from the reset synchronization stage.
FIG. 2 is a block diagram illustrating the reset conditioning stage ofFIG. 1, for example, in accordance with an embodiment of the invention. Referring toFIG. 2, the reset conditioning stage comprisesdeglitching flip flops202 and204, a logical ORgate206, and amultiplexer208. The external reset (extrst) signal210 signal is provided as an input of theflip flop202. Theclock signal211 is coupled to bothflip flops202 and204. The test enable (test_en) signal212 is provided as an input to themultiplexer208. The output signal generated by themultiplexer208 is theinternal reset signal216. Anintermediate signal214 is provided as an output of the logical ORgate206.
Flip flops202 and204 may be adapted to perform a deglitching function on the external reset (extrst) signal210 by filtering transient glitches in the external reset (extrst)signal210.Flip flop202 may generate a signal which is delayed in time by, for example, one period of theclock signal211 from the external reset (extrst)signal210.Flip flop204 may generate a signal which is delayed in time by, for example, two periods of theclock signal211 from the external reset (extrst)signal210. The external reset (extrst) signal210, along with outputs fromflip flops202 and204 may be provided as inputs to the logical ORgate206. Theflip flops202 and204 may be configured to filter transient glitches which may occur in the external reset (extrst)signal210. A signal level in the external reset (extrst) signal210 that is latched intoflip flop202 may be presented in theintermediate signal214 through, for example, 2 additional periods of theclock signal210. The test enable (test_en) signal212 may control themultiplexer208. When the test enable (test_en) signal is asserted to a logical high state, themultiplexer208 may couple the external reset (extrst) signal210 to theinternal reset signal216, which is the output from themultiplexer208. When the test enable (test_en) signal is deasserted, for example, to a low state, themultiplexer208 may couple theintermediate signal214 to theinternal reset signal216, which is the output from themultiplexer208.
FIG. 3 is a block diagram illustrating circuitry for the reset generation stage ofFIG. 1, for example, in accordance with an embodiment of the invention. Referring toFIG. 3 the reset generation stage comprises apulse generation block302, and a logical ANDgate304. Theinternal reset signal306 may be provided as an input to the logical ANDgate304 and to an input to thepulse generator block302. The scan mode (scan_mode) signal308 may be provided as an input to thepulse generator block302. The pulse generatorblock generator block302 may be adapted to generate a scan_testmode (scan_testmode) signal310, and aninternal pulse312. Theinternal pulse312 may be coupled to an input to the logical ANDgate304. The logical ANDgate304 may generate an asynchronous reset (async_reset)signal314. Thepulse generator block302 may utilize theinternal reset signal306 and the scan mode (scan_mode) signal308 to generate theinternal pulse312 and the scan testmode (scan_testmode) signal310. The logical ANDgate304 may adapt a logical AND product of theinternal reset signal306 and theinternal pulse312 to generate the asynchronous reset (async_reset)signal314.
FIG. 4 is a block diagram illustrating circuitry for pulse generation, in accordance with an embodiment of the invention. Referring toFIG. 4 the pulse generation block comprises alatch402, atime delay element404, which may be implemented utilizing a plurality of buffers, and alogical XNOR gate406. Theinternal reset signal408 may be provided as an input to thelatch402. The scan mode (scan_mode) signal410 may also be provided as an input to thelatch402. The scan testmode (scan_testmode) signal412 may be generated from an output of thelatch402. The scan testmode (scan_testmode) signal412 may also be provided as an input to thedelay element404. The output from thetime delay element404 is the scan testmode delay (scan_testmode_delay)signal414. The scan testmode (scan_testmode) signal412 may be provides as an input to thelogical XNOR gate406. The scan testmode delay (scan_testmode_delay) signals may also be provided as an input to thelogical XNOR gate406. The output from thelogical XNOR gate406 may be utilized as aninternal pulse signal416.
When theinternal reset408 signal is deasserted at the input of thelatch402, the scan mode (scan_mode) signal410 present at the input of thelatch402 may be utilized to generate the scan testmode (scan_testmode)signal412. Thetime delay element404 may generate a scan testmode delay (scan_testmode_delay) signal414 which may represent a recreation of the scan testmode (scan_testmode) signal that has been delayed by a determined amount of time. Thelogical XNOR gate406 may generate aninternal pulse signal416 based upon adapting a logical XNOR sum of the scan testmode (scan_testmode) signal412 and the scan testmode delay (scan_testmode_delay)signal414. The amount of time delay which is introduced by thetime delay element404 may create an interval of time during which the logic level of the scan testmode (scan_testmode) signal412 may differ from the logic level of the scan testmode delay (scan_testmode_delay) signal414 at the inputs of thelogical XNOR gate406. During that interval, the output from the logical XNOR gate may be deasserted. When the logic level of the scan testmode (scan_testmode) signal412 does not differ from the logic level of the scan testmode delay (scan_testmode_delay) signal414, the output from the logical XNOR gate may be asserted. Thus, in the time domain, theinternal pulse signal416 may represent a pulse at the deasserted logic level whose width is based upon the amount of delay, which is introduced by thetime delay element404. There may be no such minimum pulse width constraint on theinternal reset signal408.
FIG. 5 is a block diagram illustrating circuitry for reset synchronization in accordance with an embodiment of the invention. Referring toFIG. 5 the reset synchronization stage may comprise synchronizingflip flops502 and504, and amultiplexer506. The asynchronous reset (async_reset) signal508 may be an input to flipflop502. The clock2 (clock_2) signal509 may be provided as an input to flipflops502 and504. The asynchronous reset (async_reset) signal508 may also be provided as an input to themultiplexer506. The scan testmode (scan_testmode) signal510 may be provided as an input to themultiplexer506. The output fromflip flop504 may be provided as to an input of themultiplexer506. The chip flip flop reset (chip_flip_flop_reset) signal512 may be generated as an output from themultiplexer506.
Theflip flops502 and504 may perform a clock synchronization of the reset signal to the clock domains of the flip flops on the chip. The flip flops may achieve this by latching inputs synchronously with the clock2 (clock_2)signal509. Theflip flops502 and504 may also be adapted to extend or stretch the length of the reset signal in accordance with timing needs on the chip. In this regard, the length of the reset signal pulse is extended to ensure that all the flip-flops are reset chip-wide. The output fromflip flop502 may reflect the asynchronous reset (async_reset) signal508 delayed by a period of time of one cycle of the clock2 (clock_2)signal509. The output fromflip flop504 may reflect the asynchronous reset (async_reset) signal508 delayed by a period of time of two cycles of the clock2 (clock_2)509 clock. The scan testmode (scan_testmode) signal510 may control themultiplexer506. When the scan testmode (scan_testmode) signal510 is asserted the multiplexer may couple the asynchronous reset (async_reset) signal508 to the chip flip flop reset (chip_flip_flop_reset) signal512 which is output from themultiplexer506. When the scan testmode (scan_testmode) signal510 is deasserted the multiplexer may be adapted to couple the output fromflip flop504 to the chip flip flop reset (chip_flip_flop_reset) signal512 which may be generated as an output from themultiplexer506. The chip flip flop reset (chip_flip_flop_reset) signal512 may be the signal which effects the reset of flip flops on a chip.
In operation the test enable (test_en) signal112 inFIG. 1 is asserted during scan mode. This may ensure that the external reset (extrst) signal (108 inFIG. 1) is coupled to the internal reset signal (114 inFIG. 1), bypassing the deglitching flip flops in the reset conditioning stage (102 inFIG. 1). Entry into scan mode may comprise asserting the scan mode signal. However, scan mode may not be initiated until the external reset (extrst) signal is deasserted with the scan mode signal asserted. The external reset signal should reset data contained in flip flops in the chip but if the external reset signal is deasserted for too short of a period of time, there may be instances when all the flip flops may fail to reset completely and data may still be left stored in the flip flops. But the external reset signal, which may be deasserted for too short of a period of time to reset the flip flops, may be long enough to adapt the chip to scan mode. Entry into scan mode with data stored in flip flops may enable data to be shifted out of the chip and captured in an external system, and thereby posing a potential data security breach. The pulse generator block may generate a subsequent internal reset signal, which may ensure that all the flip flops on the chip are reset before entering scan mode.
FIG. 6 is a diagram illustrating a timing diagram of signals in the exemplary system ofFIG. 1, for example, in accordance with an embodiment of the invention.FIG. 6 shows signal levels for a plurality of signals versus time. Referring toFIG. 6, there are shown exemplary timing waveforms for the external reset (extrst) signal602, theinternal reset signal604, the scan mode (scan_mode) signal605, the scan testmode (scan_testmode) signal606, the scan testmode delay (scan_testmode_delay) signal608, theinternal pulse610, the asynchronous reset (async_reset) signal612, and the chip flip flop reset (chip_flip_flop_reset)signal614. In an illustrative embodiment of the invention, it may be assumed that the test enable (test_en) signal (112 inFIG. 1) is asserted, the external reset (extrst) signal (108 inFIG. 1) is asserted prior to time=t1, and the scan mode (scan_mode) signal (116 inFIG. 1) has been deasserted for a period of time which is long, in comparison to the delay time inserted by the time delay element (404 inFIG. 1), but is asserted at time=t1. Notwithstanding, the invention is not limited in this regard.
At time time=t1, the external reset (extrst) signal602 is deasserted. In response, theinternal reset signal604 may also be deasserted. Deassertion of theinternal reset signal604 may latch the scan mode (scan_mode) signal605 which is shown inFIG. 6 as being asserted at time=t1. The scan testmode delay (scan_testmode_delay)608 signal may still indicate the previous, unasserted, level of the scan mode (scan_mode)signal605. Thus, theinternal pulse signal610 may be deasserted. The asynchronous reset (async_reset) signal612 may also be deasserted. The chip_flip_flop_reset (chip_flip_flop_reset) signal614 may also be deasserted. The assertion of the scan testmode (scan_testmode) signal may couple the asynchronous reset (async_reset) signal612 to the chip flip flop reset (chip_flip_flop_reset)signal614. Therefore, the reset preceding entry into scan mode may be an asynchronous reset.
At a subsequent time=t2, the external reset (extrst) signal602 may be asserted. The internal reset signal may also be asserted at time=t2. However, the signal level of the chip flip flop reset (chip_flip_flop_reset) signal614 may be unaffected. This may be due to the fact that theinternal pulse signal610 may still be deasserted.
At a subsequent time=t3, the scan testmode delay (scan_testmode_delay) signal608 may be asserted. In this case, the time delay inserted by the time delay element (404 inFIG. 4) may approximately equal t3-t1. At this time, theinternal pulse signal610 may be asserted. The asynchronous reset (async_reset) signal612 may be asserted as well. In concert with the asynchronous reset (async_reset) signal612, the chip flip flop reset (chip_flip_flop_reset) signal614 may be asserted. Assertion of the chip flip flop reset (chip_flip_flop_reset) signal614 may end the attempt to reset flip flops on the chip.
The exemplary timing waveforms shown inFIG. 6 illustrate that the pulse generation stage (104 inFIG. 1) may enforce a minimum length of time for the deassertion of the chip flip flop resetsignal124 inFIG. 1, which was shown to be approximately t3-t1. This minimum length of time may be independent of the length of time that an external reset (extrst) signal was deasserted. This may ensure that the resetting of flip flops before entry into scan mode independent of the method by which an external reset signal is applied.
FIG. 7 is a flow chart illustrating exemplary steps in the operation of an exemplary system, in accordance with an embodiment of the invention. Referring toFIG. 7, instep702 an internal_reset signal may be received. Instep704, the scan_mode signal may be latched. Instep706, the scan_mode_delay signal may be generated. Instep708, the logical XNOR of the scan_mode and scan_mode_delay signals may be adapted. Instep710, the internal_pulse signal may be generated. Instep712, the logical AND of the internal_reset and internal_pulse signals may be adapted. Instep714, the chip_flip_flop_reset signal may be generated.
Since the scan chain flip-flops in a device may contain sensitive information such as security keys during normal operation this information should not be allowed to be shifted out or extracted from the device. The invention provides a method and system for preventing data from being shifted out or extracted from the device in scan mode. Accordingly, various aspects of the invention clears all data in the flip-flops prior to entering scan mode. Accordingly, when the device is configured in scan mode, the logic which controls this function may be set by issuing a chip reset. This results in chip-wide reset that clears all the flip-flops of any data they may contain. The invention also provides circuitry that issues a second stage of chip reset anytime scan mode is entered. This additional reset may provide a method to clear all of the data in instances where the flip-flops may not have been completely cleared via the previous reset.
It should be recognized that the invention is not limited to the scan mode operation. Accordingly, the device may be reset to clear all data from the device when any mode is changed. For example, whenever a device enters a supervisory mode, for example, all the data in the flip-flops in the scan chain may be cleared via a reset.
Accordingly, the present invention may be realized in hardware, software, or a combination of hardware and software. The present invention may be realized in a centralized fashion in at least one computer system, or in a distributed fashion where different elements are spread across several interconnected computer systems. Any kind of computer system or other apparatus adapted for carrying out the methods described herein is suited. A typical combination of hardware and software may be a general-purpose computer system with a computer program that, when being loaded and executed, controls the computer system such that it carries out the methods described herein.
While the present invention has been described with reference to certain embodiments, it will be understood by those skilled in the art that various changes may be made and equivalents may be substituted without departing from the scope of the present invention. In addition, many modifications may be made to adapt a particular situation or material to the teachings of the present invention without departing from its scope. Therefore, it is intended that the present invention not be limited to the particular embodiment disclosed, but that the present invention will include all embodiments falling within the scope of the appended claims.

Claims (20)

US11/013,4892004-07-232004-12-15Method and system for blocking data in scan registers from being shifted out of a deviceExpired - Fee RelatedUS7490231B2 (en)

Priority Applications (1)

Application NumberPriority DateFiling DateTitle
US11/013,489US7490231B2 (en)2004-07-232004-12-15Method and system for blocking data in scan registers from being shifted out of a device

Applications Claiming Priority (2)

Application NumberPriority DateFiling DateTitle
US59066404P2004-07-232004-07-23
US11/013,489US7490231B2 (en)2004-07-232004-12-15Method and system for blocking data in scan registers from being shifted out of a device

Publications (2)

Publication NumberPublication Date
US20060020864A1 US20060020864A1 (en)2006-01-26
US7490231B2true US7490231B2 (en)2009-02-10

Family

ID=35658673

Family Applications (1)

Application NumberTitlePriority DateFiling Date
US11/013,489Expired - Fee RelatedUS7490231B2 (en)2004-07-232004-12-15Method and system for blocking data in scan registers from being shifted out of a device

Country Status (1)

CountryLink
US (1)US7490231B2 (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication numberPriority datePublication dateAssigneeTitle
US20090307411A1 (en)*2008-06-042009-12-10Ati Technologies UlcMethod and apparatus for securing digital information on an integrated circuit during test operating modes
US20090307502A1 (en)*2008-06-042009-12-10Ati Technologies UlcMethod and apparatus for securing digital information on an integrated circuit read only memory during test operating modes
US20120246528A1 (en)*2011-03-252012-09-27Paul-Henri Pugliesi-ContiCircuit for Securing Scan Chain Data
US10222417B1 (en)*2016-11-282019-03-05Cadence Design Systems, Inc.Securing access to integrated circuit scan mode and data

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication numberPriority datePublication dateAssigneeTitle
US7562275B2 (en)*2006-09-142009-07-14Silicon Laboratories Inc.Tri-level test mode terminal in limited terminal environment
US7987331B2 (en)*2007-11-152011-07-26Infineon Technologies AgMethod and circuit for protection of sensitive data in scan mode
US8074132B2 (en)*2008-10-282011-12-06Broadcom CorporationProtecting data on integrated circuit
US9110142B2 (en)*2011-09-302015-08-18Freescale Semiconductor, Inc.Methods and apparatus for testing multiple-IC devices
GB2545486B (en)*2015-12-182019-12-11F Secure CorpEvasive intrusion detection in private network
US11222098B2 (en)*2018-08-232022-01-11University Of Florida Research Foundation, IncorporatedProtecting obfuscated circuits against attacks that utilize test infrastructures
US11144677B2 (en)*2019-08-082021-10-12Nxp Usa, Inc.Method and apparatus for digital only secure test mode entry
US10955473B1 (en)2019-11-012021-03-23Nxp B.V.System and method of scan reset upon entering scan mode

Citations (3)

* Cited by examiner, † Cited by third party
Publication numberPriority datePublication dateAssigneeTitle
US5357572A (en)*1992-09-221994-10-18Hughes Aircraft CompanyApparatus and method for sensitive circuit protection with set-scan testing
US5898776A (en)*1996-11-211999-04-27Quicklogic CorporationSecurity antifuse that prevents readout of some but not other information from a programmed field programmable gate array
US7185249B2 (en)*2002-04-302007-02-27Freescale Semiconductor, Inc.Method and apparatus for secure scan testing

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication numberPriority datePublication dateAssigneeTitle
US5357572A (en)*1992-09-221994-10-18Hughes Aircraft CompanyApparatus and method for sensitive circuit protection with set-scan testing
US5898776A (en)*1996-11-211999-04-27Quicklogic CorporationSecurity antifuse that prevents readout of some but not other information from a programmed field programmable gate array
US7185249B2 (en)*2002-04-302007-02-27Freescale Semiconductor, Inc.Method and apparatus for secure scan testing

Cited By (7)

* Cited by examiner, † Cited by third party
Publication numberPriority datePublication dateAssigneeTitle
US20090307411A1 (en)*2008-06-042009-12-10Ati Technologies UlcMethod and apparatus for securing digital information on an integrated circuit during test operating modes
US20090307502A1 (en)*2008-06-042009-12-10Ati Technologies UlcMethod and apparatus for securing digital information on an integrated circuit read only memory during test operating modes
US8051345B2 (en)*2008-06-042011-11-01Ati Technologies UlcMethod and apparatus for securing digital information on an integrated circuit during test operating modes
US8397079B2 (en)2008-06-042013-03-12Ati Technologies UlcMethod and apparatus for securing digital information on an integrated circuit read only memory during test operating modes
US20120246528A1 (en)*2011-03-252012-09-27Paul-Henri Pugliesi-ContiCircuit for Securing Scan Chain Data
US9746519B2 (en)*2011-03-252017-08-29Nxp B.V.Circuit for securing scan chain data
US10222417B1 (en)*2016-11-282019-03-05Cadence Design Systems, Inc.Securing access to integrated circuit scan mode and data

Also Published As

Publication numberPublication date
US20060020864A1 (en)2006-01-26

Similar Documents

PublicationPublication DateTitle
US7185249B2 (en)Method and apparatus for secure scan testing
CN111027270B (en)Method and circuit for trusted design of integrated circuit design flow
US7490231B2 (en)Method and system for blocking data in scan registers from being shifted out of a device
JP6968234B2 (en) Electronic devices and methods for performing data sampling integrity checks using flip-flops with relative delay
US9746519B2 (en)Circuit for securing scan chain data
US8466727B2 (en)Protection against fault injections of an electronic circuit with flip-flops
JP3671948B2 (en) Semiconductor integrated circuit and its test method
US11244046B2 (en)Data-sampling integrity check using gated clock
Shabani et al.PMTP: A MAX-SAT-based approach to detect hardware trojan using propagation of maximum transition probability
US5606564A (en)Test logic circuit and method for verifying internal logic of an integrated circuit
US20070208912A1 (en)Dual-path, multimode sequential storage element
US12182316B2 (en)Integrated circuit protection against reverse engineering
US20050066189A1 (en)Methods and structure for scan testing of secure systems
Vinod et al.Simulation based hardware Trojan detection using path delay analysis
US11879938B2 (en)Method for detecting perturbations in a logic circuit and logic circuit for implementing this method
Giridharan et al.A MUX based Latch Technique for the detection of HardwareTrojan using Path Delay Analysis
US9506983B2 (en)Chip authentication using scan chains
US11275401B2 (en)Tamper monitoring circuitry
KR100844485B1 (en) Test mode entry / decision circuit of semiconductor device, semiconductor device having same and test mode entry / decision method of semiconductor device
US11809609B2 (en)Malicious attack detection techniques
US20050177357A1 (en)Static timing model for combinatorial gates having clock signal input
Masand et al.Measuring Robustness of Side Channel Analysis in the Detection of Hardware Trojans in Encryption Modules
CN117355757A (en)Physical security protection for integrated circuits
Vater et al.An On-chip Security Monitoring Solution For System Clock For Low Cost Devices
DevicesSecurity in the Age of Nanocomputing (Part 2)

Legal Events

DateCodeTitleDescription
ASAssignment

Owner name:BROADCOM CORPORATION, CALIFORNIA

Free format text:ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:TURNER, TONY MICHAEL;KUO, JONATHAN HUY;MANSON, JACK ARNOLD;AND OTHERS;REEL/FRAME:015734/0970

Effective date:20041215

STCFInformation on status: patent grant

Free format text:PATENTED CASE

FPAYFee payment

Year of fee payment:4

ASAssignment

Owner name:BANK OF AMERICA, N.A., AS COLLATERAL AGENT, NORTH CAROLINA

Free format text:PATENT SECURITY AGREEMENT;ASSIGNOR:BROADCOM CORPORATION;REEL/FRAME:037806/0001

Effective date:20160201

Owner name:BANK OF AMERICA, N.A., AS COLLATERAL AGENT, NORTH

Free format text:PATENT SECURITY AGREEMENT;ASSIGNOR:BROADCOM CORPORATION;REEL/FRAME:037806/0001

Effective date:20160201

FPAYFee payment

Year of fee payment:8

ASAssignment

Owner name:AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD., SINGAPORE

Free format text:ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:BROADCOM CORPORATION;REEL/FRAME:041706/0001

Effective date:20170120

Owner name:AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD

Free format text:ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:BROADCOM CORPORATION;REEL/FRAME:041706/0001

Effective date:20170120

ASAssignment

Owner name:BROADCOM CORPORATION, CALIFORNIA

Free format text:TERMINATION AND RELEASE OF SECURITY INTEREST IN PATENTS;ASSIGNOR:BANK OF AMERICA, N.A., AS COLLATERAL AGENT;REEL/FRAME:041712/0001

Effective date:20170119

ASAssignment

Owner name:AVAGO TECHNOLOGIES INTERNATIONAL SALES PTE. LIMITE

Free format text:MERGER;ASSIGNOR:AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD.;REEL/FRAME:047195/0827

Effective date:20180509

ASAssignment

Owner name:AVAGO TECHNOLOGIES INTERNATIONAL SALES PTE. LIMITE

Free format text:CORRECTIVE ASSIGNMENT TO CORRECT THE EFFECTIVE DATE OF MERGER PREVIOUSLY RECORDED AT REEL: 047195 FRAME: 0827. ASSIGNOR(S) HEREBY CONFIRMS THE MERGER;ASSIGNOR:AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD.;REEL/FRAME:047924/0571

Effective date:20180905

FEPPFee payment procedure

Free format text:MAINTENANCE FEE REMINDER MAILED (ORIGINAL EVENT CODE: REM.); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

LAPSLapse for failure to pay maintenance fees

Free format text:PATENT EXPIRED FOR FAILURE TO PAY MAINTENANCE FEES (ORIGINAL EVENT CODE: EXP.); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

STCHInformation on status: patent discontinuation

Free format text:PATENT EXPIRED DUE TO NONPAYMENT OF MAINTENANCE FEES UNDER 37 CFR 1.362

FPLapsed due to failure to pay maintenance fee

Effective date:20210210
[8]ページ先頭
©2009-2025 Movatter.jp